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Abstract 

Let / be a polynomial of degree d in n variables over a finite field F. The polynomial is said 
to be unbiased if the distribution of f{x) for a uniform input a: € F” is close to the uniform 
distribution over F, and is called biased otherwise. The polynomial is said to have low rank if it 
can be expressed as a composition of a few lower degree polynomials. Green and Tao [Contrib. 
Discrete Math 2009] and Kaufman and Lovett [FOGS 2008] showed that bias implies low rank 
for fixed degree polynomials over fixed prime fields. This lies at the heart of many tools in higher 
order Fourier analysis. In this work, we extend this result to all prime fields (of size possibly 
growing with n). We also provide a generalization to nonprime fields in the large characteristic 
case. However, we state all our applications in the prime field setting for the sake of simplicity 
of presentation. 

As an immediate application, we obtain improved bounds for a suite of problems in effective 
algebraic geometry, including Hilbert nullstellensatz, radical membership and counting rational 
points in low degree varieties. 

Using the above generalization to large fields as a starting point, we are also able to settle 
the list decoding radius of fixed degree Reed-Muller codes over growing fields. The case of fixed 
size fields was solved by Bhowmick and Lovett [STOG 2015], which resolved a conjecture of 
Gopalan-Klivans-Zuckerman [STOG 2008]. Here, we show that the list decoding radius is equal 
the minimum distance of the code for all fixed degrees, even when the field size is possibly 
growing with n. 
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1 Introduction 


Let / be a polynomial of degree d in n variables over a finite field F. The polynomial / is said to be 
unbiased if the distribution of f{x) for a uniform input a: G is close to the uniform distribution 
over F, and is called biased otherwise. We say that / has low rank if it can be expressed as 
a composition of a few lower degree polynomials. The goal is to understand the structure of 
polynomials that are biased. Green and Tao [GTOQ] and Kaufman and Lovett [KLOS] showed over 
fixed prime helds, that if a fixed degree polynomial is biased, then it has low rank. Such a result 
lies at the heart of many tools in higher order Fourier analysis. However, the bounds obtained from 
the above results have very weak dependence (Ackermann-type) on the field size |F| and the degree 
d, and thus are inefficient for large fields. In this work, we extend this to large fields, by proving 
bounds that are polynomial in the field size |F|. 

More precisely, we have the following. Let F be a prime finite field. Let Prf(F"') denote the 
family of polynomials / : F" —)• F of total degree at most d. Let e : F —^ C be an additive character, 
e(a) = exp(27ria/|F|). 

Theorem 1.1. Let d, s G N. L et / G Prf(F"). Suppose that |E 2 ;gFn[e(/(x))]| > |F|“*. Then, there 
exist gi, ... Qc & c = c^^{d, s), and T : F"^ —)■ F, such that f{x) = T{gi{x), ... ,gc{x)). 

Crucially, the rank c is independent of both the held size |F| and the number of variables n. We 
show lLemma l4.17p that T itself is a low degree polynomial: if deg(gi) = di then 

C 

T{zi,...,Zc) = O^eYlzp. 

e^N^:Y2diei<d 


1.1 Effective algebraic geometry 

Hilbert’s strong nullstellensatz establishes a relationship between algebra and geometry and is a 
fundamental theorem in algebraic geometry. It states the following: given a collection of polynomi¬ 
als, if / vanishes on the set of common zeroes of the polynomials, then some power of / lies in the 
ideal generated by the collection of polynomials. The area of effective algebraic geometry tries to 
bound two quantities. First, it bounds what power / should be raised to for the theorem to hold. 
And second, it bounds the degrees of the coefficient polynomials when representing a power of / 
as a member of the ideal. We prove effective versions of these bounds when all polynomials are of 
fixed degree. 

Theorem 1.2 (Effective Strong Nullstellensatz). Let c, d G N. Let Pi, ... Pc, Q G Prf(F"). Assume 
that Q{x) = 0 whenever Pi{x) = ... = Pc{x) = 0. Then there exist r,D = Orfc(l); ■ ■ ■ Rc £ 
Pd{¥'^), such that 

C 

Qixf = Y,R^{x)P^{x). 

i=l 

In this work, we focus on the setting of constant d and c. Thus, we get r = 0(1) and D = 0(1). 
The first effective result in this direction was due to Hermann [Her 26] in 1926 who proved D = 
^ 0 ( 2 ")^ In 1987, Brownawell |Bro87] and later Kollar |Kol88| in 1988, proved a singly exponential 
bound in n. Green and Tao |GTr)9| proved bounds independent of n as long as |F|, d, c are constants. 


2 
















Note that our results give bounds independent of n assuming d and c fixed. We do not require |F| 
to be constant. 

In fact, Kollar in his breakthrough work [Kol88| showed singly exponential in dimension bound 
for the degree of the i?j’s. This bound is necessary over finite fields but the counter example requires 
the number of polynomials to be growing with n whereas we consider fixed number of polynomials. 

As a corollary we have the effective weak nullstellensatz. 

Corollary 1.3. Let c, d € N. Let Pi,... Pc G Prf(F") be such that they have no common zero. Then 
there exist D = Od,c{^), Ri-,. ■ ■ Rc ^ T’d(F”), such that 

C 

'^Ri{x)Pi{x) = 1. 
i=l 

A related problem is that of radical membership. Here the problem is given a collection of 
polynomials, and a polynomial /, find if some power of / belongs to the ideal generated by the 
above collection. The challenge is to do this using an efficient algorithm. We prove the following 
algorithmic result. 

Theorem 1.4 (Algorithmic Radical Membership). Let c, d G N. Let Pi,... ,Pc,Q G Rrf(F"). Let 
I = {Pi,... ,Pc). Then we have an algorithm that performs field operations and decides if 

Q G y/l. 

Finally, we come to the problem of counting the number of rational points in a variety. The 
exact problem of detection of rational points is NP hard. See for example [AH961 IHI93t IKY081 
IHW98[[GKSMllCCLn8j . 

Given polynomials /i,... /c : F" —)• F, let Vp{fi,..., fc) C F*^ denote the set of common zeroes 
of fiS, where the subscript p is to emphasize the interest in rational points. 

Lemma 1.5 (Rational points in varieties). Let c,d,t,u G N. Let Pi,..., Pc G Prf(F"'). There is 
a randomized algorithm that performs Od^c,t,u{n^) + field operations and performs the 

following with probability 1 — -p^.' 

1. Decide if Vp{Pi,..., Pc) is empty. 

2. Output an integer N such that = (1 ± |F|““)|l^(Pi,... ,Pc)\- 

1.2 List Decoding Reed-Muller codes 

The notion of list decoding was first introduced by Elias |Eli57] and Wozencraft |Woz58| to decode 
error correcting codes beyond half the minimum distance. The objective of list decoding is to output 
all the codewords within a specified radius around the received word. List decoding has applications 
in many areas of computer science including hardness amplification in complexity theory [STVOll 
ITreOS] , construction of hard core predicates from one way functions [GL89t lAGSOSj , construction 
of extractors and pseudorandom generators [TSZSOll ISU051 IVadl2[ IGUV09] and computational 
learning |KM93( I.lac97] . Despite so much progress, the largest radius up to which list decoding 
is tractable is still a fundamental open problem even for well studied codes like Reed-Solomon 
(univariate polynomials) and Reed-Muller codes (multivariate polynomials). 
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Reed-Muller codes (RM codes) were discovered by Muller in 1954. Fix a finite field F and 
d, n € N. The RM code RMF(n, d) is defined as follows. The message space consists of degree d 
polynomials in n variables over F and the codewords are evaluation of these polynomials on F*^. 
The distance of two functions /, g : F” —)• F is the fraction of points where they disagree, 

dist(/,g) := Pr^[/(x) / g{x)] 

The minimal distance of a code is the minimal distance of any two distinct codewords. For 
RMF(re, d), this is well understood. When d < |F| the minimal distance is given by 

distmin(RMF(n,d)) = 1 - A. 

More generally, if d = a(|F| — 1) + 6 for 0 < 6 < |F| — 1 then the minimal distance is |F|““(1 — -p), 
but as we focus on large fields, we will always be in the regime of d < |F|. 

The list decoding radius of a code is the maximal radius, such that any ball of that radius 
(centered around an arbitrary function) contains only a few codewords. Let C = RMF(n, d). For 
grF*^—;>F, 0</3<l dehne 

Bc{g,p) ■■= {/ e T’d(F’') : dist(/, g) < p} . 

and 

Lc{p):= max |Rc(d,p)l- 

g:F"^F 

The list decoding radius of C is the maximal radius, up to which Lc{p) is “small”. In the regime 
of growing fields, “small” is defined as as polynomial in the field size. It is easy to see that the 
list decoding radius cannot exceed the minimal distance of the code. The Johnson bound [Joh62] 
provides a general lower bound for the list decoding radius, which is determined only by the minimal 
distance of the code. It is known to be tight in general, but it is conjecture not to be tight for 
special families of codes, for example Reed-Muller codes. 

In the regime of constant size fields, it is known that the list decoding radius is in fact equal to the 
minimal distance of Reed-Muller codes. It was initially proved by Goldreich and Levin [GL89| and 
Goldreich, Rubinfield and Sudan |GR,Snn| for linear polynomials, that is, d = 1. Later, Gopalan, 
Klivans and Zuckerman |GKZ08] proved it for the binary field, F = F 2 , and for general fixed prime 
fields Fp whenever {p — l)|d. They conjectured that is holds for all fixed d,p. Gopalan |GoplO| 
proved it for d = 2. Bhowmick and Lovett [BL15] proved it for all fixed prime helds and all degrees. 
In this work, we extend this to all prime fields, with size possibly growing with n. 

Theorem 1.6. Let d, s G N. There exists c = c(d, s) such that the following holds. For any prime 
finite field F with |F| > d and any n G N, 

BRMw{n,d) “ |]p|s ^ — 1^1 ■ 

Moreover, for any 1 < e < d, 

If |F| < d, then the result follows from [BL15j . There have been few results that show list 
decodability beyond the Johnson radius [DGKSO^ IGKZ08| . This work shows that Reed-Muller 
codes of fixed degree are list decodable beyond the Johnson radius. 
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1.3 Non-prime fields 


The main focus of this paper is prime fields. However, we show ('Theorem l4.20p that Theorem ll.ll can 
be extended to non-prime fields, as long as their characteristics exceeds the degree of the polynomial 
studied. All the other results in this paper extend to this case as well, as given Theorem 11.11 their 
proof extend without requiring any change. 

1.4 Proof Overview 

We first present a proof overview for Theorem 11.11 The proof is along the lines of Green and 
Tao |GT09| . Let f{x) be a polynomial of degree d that is biased, that is |Ea;gFne(/(x))| > |F|“^. 
We first prove that there is a low rank approximation to the given polynomial /. That is, there 
exist < 71 ,... £ Pd-i(E”'), c = c{d, s, t), and T : —)• F, such that 

PrxGF"[/(a;) / r{gi{x),... gdx))] < |F|"‘. 

In the regime of fixed finite helds, this was proved by Bogdanov and Viola [BV07] . where the bound 
c depends polynomially on the underlying parameters, including the error bound, which means that 
it depends on the field size. Here, we obtain a variant of the lemma, where the bound is independent 
of the field size. This is crucial in the next step of the proof, where we show that if the error in 
approximation is small enough, then it can be converted to an exact computation, if we make the 
underlying polynomials “random enough” by a regularization process. As this step increases the 
number of polynomials tremendously, we cannot tolerate any dependence on the field size in the 
first part of the proof. The proof follows along the lines of |GT09| with appropriate modifications 
to tackle the case of growing held size. 

The applications in effective algebraic geometry follow by using the principles of regularization, 
thereby reducing the dimension of the problem to a constant, solving it in constant dimension, and 
lifting the solution back to the original problem. They are typically straightforward applications of 
the former result. 

The application to list decoding of Reed-Muller codes is more involved and uses the bias vs 
low rank theorem as one of the building blocks. Given a received function (7 : —)■ F, the hrst 
step is to show that it is enough to bound the list size of a subcode of the Reed-Muller code, 
consisting of only the low rank polynomials. This step is similar to the work of Gopalan |GoplO| . 
We next show that the list decoding problem for low rank codes can be further reduced to the 
case where the center g is of “low complexity”, concretely, when g is measurable with respect to a 
small polynomial factor of bounded degree. Unlike the case of fixed finite fields handled in [BL15j . 
we need to allow a number of potential low complexity centers for each received word. However, 
we show that this number is still polynomial in the field size, which allows to keep the number of 
codewords polynomial in the field size as well. Finally, we prove that the list size around such a 
low complexity center is bounded. The last part is similar to the analogous part in the previous 
work of the authors [BLT5] . 

1.5 Related work 

Except for the work mentioned already, another related work which is worth mentioning is the 
recent algebraic regularity lemma by Tao [Taol3] . It improves upon the Szemeredi regularity 
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lemma |Sze78] in the setting where the graph is definable over a field of large characteristic. In 
a high level, it shows that if a graph has the vertex set F"", for fixed n and large F, and edges 
defined by polynomial equalities of bounded complexity (fixed degree polynomials, fixed number 
of variables, fixed number of logical operations) then the graph can be partitioned to a bounded 
number of subsets, such that all pairs are regular. This should be compared to the Szemeredi 
regularity lemma, which can only guarantee this for most pairs. 

1.6 Organization 

The rest of the paper is as follows. Section [2] contains preliminaries. In Section [3] we show that 
any biased polynomial can be approximated by a composition of a small number of lower degree 
polynomials. In Section [H we show how to convert a good enough approximation to an exact 
computation. Section [5] contains applications in effective algebraic geometry. Section [6] contains 
the application to list decoding of Reed-Muller codes. 


2 Preliminaries 

Let N denote the set of positive integers. For n G N, let [re] := {1,2,..., re}. We use y = x ± e to 
denote y G [x — e,x + e]. For re G N, and x, y G C”, let (x, y) := where o is the conjugate 

of a. Let ||x ||2 := -s/ (x,x). 

Fix a prime field F = Fp. Let | • | : F —{0,... ,p — 1} C N be the natural map. Let e : F —)■ C 
be an additive character, defined as e(a) := Recall that we denote by the family 

of polynomials / : F"" —)• F of total degree at most d. Given a function / : F” —>• F, its directional 
derivative in direction h G F"" is D^f : F” —)• F, given by Dhf{x) = f{x + h) —/(x). Observe that if 
/ G Rrf(F”) then D^f & for all h G F". For yi,... , ym G F*^ defined the iterative derivative 

as = Dy^ ... Dy^f. M particukr, if / G T’d(F”) and m> d then = 0. 

Let X,Y be finite sets. Define A{Y) := {y : T —)• M>o : Yhyev ^iv) ~ ^ ^e the probability 

simplex on Y . We embed Y C A{Y) in the obvious way: y G T is mapped to a unit vector with 
1 in coordinate y and 0 in all other coordinates. For a function f : X ^ Y let p{f) : X —)■ A(Y) 
denote its corresponding embedding, given by p{f){x) = Note that A(T) is endowed with 

an inner product, as a subset of So, if /, y : X —)• T then 

PrxGF"[/(a^) = gix)] =E^(zrr^[{p{f){x),p{g){x))]. 

3 Bias implies low rank approximation 

Lemma 3.1. Let d,s,t^ N. Let f G 'Pd(F"). Suppose |Ea;gFn[e(/(x))]| > |F|“^. Then, there exist 
• • • 5c G c = c{d, s, t) = ('^+*+2*+3^ ^ dYid F : F'^ —)• F, such that 

Pr 2 ,eFn[/(x) / r(yi(x ),... gdx))] < |F|■^ 

Moreover, each gi is obtained as a derivative of f, gi = Dhif for some hi G F*^. 

We prove lemma [3T] in this section. So, fix / G Rrf(F"') and let p = E 3 ;gFn [e(/(x))], where we 
assume \p\ > |F|“®. We begin with the following simple claim. 
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Claim 3.2. For all x G F"" 


H ■ e(-/(x)) = EygF" [e{Dyf{x))] . 

Proof. Ey^rn [e{Dyf{x))] = [e(/(x + y))e{-f{x))] = E^gF- [e(/(y))]-e(-/(x)) = ^•e(-/(x)). 

□ 


Fix X G F”'. Pick z = {zi,...Zk) G (F”)^ uniformly for some k to be specified later. For 
a G F*^, z G (F"-)^, we shorthand a - z = ^ For a G F^ \ {0}, let Wa{z) be the random 

variable (over the choice of z) defined as 

Waiz) := e{Da.zf{x)). 


For a 7 ^ 0, we have 


E,[lF„(z)]=E, [e{Dyf{x))]. 


Also, observe that for distinct i,m 


e{£) — e{m)\ > |F| 


We have the following. 

Claim 3.3. If for z G (F*^)^ it holds that 


1 

|F|^ - 1 




Ey [e{Dyf{x))] 


< 


1 

2|F|*+i’ 


then 

fix) = FiDa.zfix) : a G F" \ {0}) 
where F : fI'^I''"^ ^ F is some explicit function. 


Proof. Since \e{t) — e{m)\ > |F| ^ for 7 ^ m and |/r| > |F| if we define 


F(?/i,...y|F|fe_i) = argimn 








then by the assumption of the claim, 

TiDa.zfix)-.aeE^\m = fix). 


□ 


Since the random variables {Waiz) : a G F^ \ {0}} are pairwise independent, we have by 
Chebychev’s inequality that if we choose A; = t + 2s + 3 then 


Pr 


ze(¥")>‘ 


|F|^ - 


^^Y,Waiz)-Ey [eiDyfix))] 

aj^O 


> 


1 


2|F| 


s+l 


4|F|2^+2 1 

-< rar- (1) 


— iwlfc 


|F|fc - 1 - |F|< 
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Thus, for all x G 


Pr,g(F„).[r(D„.,/(x) : a G F" \ {0}) = f{x)] > 1 - |F|-*. 

Therefore, by an averaging argument there exists z G (F")^ for which 

n[r {Da. J{x) :aG¥^\ {0}) = f{x)] > 1 - |F|-b (2) 

We now prove our hnal claim, which shows that we only need a constant number of derivatives 
in order to approximate / (instead of a number which is polynomial in |F|). 

Claim 3.4. Let ^ = {6 G F^ : \bj\ < d}. Then for any a G F^, 

Da-zfix) = '^Xa,bDb.zf{x) 
beB 


for some Xa,b £ F. 

Proof. Let |a| = I®*1- We prove the claim by induction on |a|. If |a| < d the claim is 

straightforward, as assume |a| > d. As / is a degree d polynomial, we have for any m > d and 
yi, ■ ■ ■, ym G F” that 

Dy^ . . . Dy^f — 0. 

This translates to 

(_l)Eciy ^ 0. 

cG{0,l}"* 

As the sum of the coefficients is zero, this implies that 

{-l)^^Wa.yf{x)=0. 

ce{o,i}"* 

Apply this for m = |a| and yi,... ,ym set to zi repeated oi times, Z 2 repeated 02 times, up to z^ 
repeated times. Then we obtain that 

a'<a 


where the sum is over all a' G F^ such that |a'| < \ai\ for all 1 < i < /c. We conclude that Da.zf{x) 
is a linear combination of Da'.zf{x) for a' G F^ with \a'\ < |a|, and apply the induction claim. □ 


This concludes the proof of Lemma f3.ll We can approximate f{x) correctly on 1 — |F| * fraction 
of the coordiantes, by a function of \B\ < polynomials of lower degree, where fe = t + 2s + 3. 


4 Bias implies low rank exact computation 

The main theorem we prove is the following. 

Theorem II. 11 Let h, s G N. Let / G Suppose that |E 2 ;g]Fn[e(/(x))]| > |F|“^. Then, there 

exist gi,...gc G Prf_i(F"), c = s), and T : F'^ —)■ F, such that f{x) = r{gi{x),... gdx)). 

Moreover, each gi is obtained as a derivative of /, gi = D^if for some hi G F*^. 

The proof is by induction on the degree d. The reader can verify that all the polynomials 
obtained throughout the proof are derivatives or iterated derivatives of /. Moreover, iterated 
derivatives can be decomposed at the end back to few single derivatives, by applying the following 
identity iteratively: 

DhiMf = Dhi+h2f - Dhif - Dh^f 

But first, we define the notion of regularity followed by some important consequences of Theo¬ 
rem [LT] which are required in the inductive proof of the same and might be of independent interest. 

4.1 Basic definitions 

Definition 4.1 (Rank). Let d G N and / : F" —>• F. Then rankrf(/) is defined as the smallest 
integer r such that there exist polynomials hi,... ,hr : F"" —)• F of degree <4—1 and a function 
T : F^ —)• F such that f{x) = T{hi{x ),..., hr{x)). If d = 1, then the rank is 0 if f is a constant 
function and is oo otherwise. If f is a polynomial, then rank(/) = rank^(/) where d = deg(/). 

Definition 4.2 (Factor). Let X be a finite set. Then a factor B is a partition of the set X. The 
subsets in the partition are called atoms. 

For hnite sets X and Y, recall that X(Y) is the probability simplex over Y, and that we embed 
Y C A(T) and embed functions f : X ^ Y as functions / : X —)• A{Y) in the obvious way. For a 
factor .8 of X, a function / : X —>• A(T) is said to be measurable with respect to B if it is constant 
on the atoms of B. The average of / over B is E[/|B] : X A(y) defined as 

E[/|^](x)=E,eB(x)[/(y)] 

where B{x) is the atom containing x. Clearly, E[/|B] is measurable with respect to B. 

A collection of functions hi,...,he : X —)• Y defines a factor B whose atoms are {x G X : 
hi{x) = yi,..., hc{x) = yc} for every {yi,... ,yc) G T'^. We use B to also denote the map x e-)- 
{hi{x),... ,hc{x)). A function / is measurable with respect to a collection of functions if it is 
measurable with respect to the factor the collection defines. 

Definition 4.3 (Polynomial Factor). A polynomial factor B is a factor defined by a collection of 
polynomials = {hi,..., he : F"" —)• F} and the factor is written as B^t- The degree of the factor is 
the maximum degree ofh^TL. With a slight abuse of notation, we would typically identify TL and 

Bh- 


Let \B\ be the number of polynomials defining the factor. We define ||B|| := |F|'^ to be the 
number of (possibly empty) atoms. 

Definition 4.4 (Rank and Regularity of Polynomial Factor). Let B be a polynomial factor defined 
6?/ hi,..., he : F” —7- F. Then, the rank ofB is the least integer r such that there exists (ai,... , Oc) G 
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(ai,..., Oc) / (0,..., 0) for which the linear combination h{x) := aihi{x) has rankrf(/i) < r 

where d = maxj deg(aj/ij). For a non decreasing function r : N —?> N, a factor B is r-regular if its 
rank is at least r{\B\). 

Definition 4.5 (Semantic and Syntactic refinement). Let B and B' he polynomial factors on F". 
A factor B' is a syntactic refinement ofB, denoted by B' B if the set of polynomials defining B 
is a subset of the set of polynomials defining B'. It is a semantic refinement, denoted by B' '^sem S 
if for every x,y £ F", B'{x) = B'{y) implies B{x) = B{y). 


Lemma 4.6 (Polynomial Regularity Lem ma). Let r : N —>• N 6e a non-decreasing function and 
d £ N. Then there is a function : N —)• N such that the following is true. Let B be a 

factor defined by polynomials /ii,... , /ic : F” —^ F of degree at most d. Then, there is an r-regular 
factor B' d efined by polynomials h'l,... ,h'^i : F’^ —)■ F of degree at most d such that B' '^sem S and 

,/ ^ I 


c < 


'(c). 


Moreover if B ^syn S for some polynomial factor B that has rank at least r{c!) + c' + 1, then 


hsyn B. 


The proof of Lemma [4.6l is exactly along the lines of existing proofs in the literature, for example 
Lemma 2.3 in |GT09| . so we do not repeat it here. 

For {wi,... ,Wk), {w[,... £ F^, we write (rci,... ,Wk) -< {w[,... ,w'^) if \wi\ < \w[\ for all 

i £ [k], where | • | is the canonical map from F to {0, 1, ... — 1}. 

Definition 4.7 (Affine system). An affine system is a set of linear forms {L \,..., Lm}, where each 
Li : F^ ^ F is defined by Li{x) = Ylj=i'^i,jXj, which satisfies the following: 

• Wi^i = 1 for all i £ [m]. 

• If L'{x) = > where w'^ = 1 and w' -< Wi for some i £ [m], then w' = Wj for some 

j £ [m]. 


4.2 Inverse Gowers norm for polynomial phases 


Theorem 4.8. Suppose Theorem M.lHs t rue up to order d. Let d,s£N. Let f £ VdiF""). Suppose 
lle(/)||^tj > |F|“®. Then, rank(/) < c'l^^(d, s). 


Proof. We have 

\E^,y,,...,y,&r. [c (D,, (x) )] | = Mf)\\l", > |F|-L 

Let g : F be defined as 

g{x,yi,...,yd) := Dy,^,„^yJ{x). 

By Theorem m _ 

rank( 5 ) < c^{d,s/2^). 

By Taylor’s theorem, since we assume d < |F|, 
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wher e h G Vd-i{^'^)- Since, ff(0 , x,. .. ,x) = Dx^...^xf{0), we conclud e th at rank(/) < r ank(ff) + 1 < 
g/ 2 rf) _j_ Choosing s) large enough such that s) > c^^{d,s/2^) + 1 

finishes the proof. □ 


4.3 Equidistribution of atoms 


The next lemma shows that a regular factor has atoms of roughly equal size. 


Lemma 4.9 (Size of atoms). Suppose Theorem \l.l\ is true up to order d. Let B = {hi,. .., h^} he 
a polynomial factor of degree at most d. Given s G N, assume that B has rank at least g '^, 

Then for every b G 


Prx&r,[B{x) = b] 


11811=^ |F|-' 


Proof. For any 6 G F'^, 


Pr[.8(a:) = b] 


|F|8 


aGF‘= 


— ±— y 

|F|c |F|c ^ 


e [ '^ai{hi{x) - bi)j 




Ex 


— ± — 
|F|^ |F|‘ 


The last line follows because of the followi ng. Suppose for some a 7 ^ 0, IE 3 , [e ajhj(x))]| > 
1 ^, then by Theorem 11.11 rank(^^ajhi) < c'll^(d, s). This contradicts the assumption on the 
rank of . 8 . □ 


4.4 Near orthogonality of affine linear forms 

Lemma 4.10 (Near orthogonality). Suppose Theorem M . 1\ is true up to order d. Let c, d,p, s,m,k G 
N. Le t B = {hi ,..., he} be a polynomial factor of degree at most d. Assume B has rank at least 
fc, s). Let {Li,..., L^) be an affine system on k variables. Let A = {Kj)i£[c],je[m] be a 
tuple of integers. Define 

/ia(xi, ... ,Xfc) = y Xijhi{Lj{xi,... ,Xk)). 

jG[c],jGH 

Then one of the following is true. 


1. h-A = 0. Moreover, for every i G [c], it holds that J2jLi = 0 for all gi G Prf(F”). 

2. h-A ^ 0. Moreover, |E[e(/iA(a:i,...,Xfc)]| < |F|“®. 


Again, the proof is exactly along the lines of Theorem 3.3 in BFH"*"!!!] taking care of the 
dependence on |F| now, followed by an application of Theorem 14.81 As a corollary, we state the 
above result for the case of parallelepipeds. We will need this in the inductive proof of Theorem ll.il 
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4.5 Equidistribution of parallelepipeds 


We first set up some definitions following Section 4 in [GT09] . Throughout this subsection, let 
B = jhi,, he} be a polynomial factor of degree at most d. We assume B has rank at least 
rSS(d, s). For i £ [d], Mj denotes the number of polynomials in B of degree exactly equal to i. 
Let S := (8)jg[d]IF^L 

Definition 4.11 (Faces and lower faces). Let A: £ N and 0 < k' < k. A set F C {0,1}^ is called a 
face of dimension k' if 

F = {6:6, = d„i£/}, 

where I C [k\, \I\ = k — k' and 5i £ {0,1}. If 5i = 0 for all i £ I, the F is a lower face. Thus, it is 
equivalent to the power set of [A;] \ /. 

Definition 4.12 (Face vectors and parallelepiped constraints). Let io £ [d], jo £ [-Lfjg] and F C 
{0,1}^. Let r(zo,jo,F) £ indexed as r{i,j,oj) = (—1)1^^! if i = io,j = jo and oj £ F 

and zero otherwise. This is called a face vector. If F is a lower face, then it corresponds to a 
lower face vector. If dim(E) > zq + 1, then it is a relevant face (lower face) vector. A vector 
{t{uj) : a; £ {0,1}^) £ satisfies the parallelepiped constraints if it is orthogonal to all the 

relevant lower face vectors. 

Let So C ] 3 g subspace of vectors satisfying the parallelepiped constraints. 

Claim 4.13 (Dimension of Sq, Lemma 4.4 |GT09] i. Let d < k. Then, 

d 

dim(So) = '^Mi ^ 

i=l 0<j<2 

Lemma 4.14 (Equidistribution of parallelepipeds). Suppose T heorem 11.11 is true up to order d. 
Given s,d < k £ N, let B be a polynomial factor of rank at least eSdU s) defined by polynomials 
All,..., he : F” —)• F of degree at most d. For every A £ Sq and x such that B{x) = A(0), 

[B{x + u-y)= t{uj) V (u £ {0,1}^=] = , ^ ^ ± 

Proof. This immediately follows from the dimension of Sq (Claim I4.13P and Lemma 14.101 applied 
to the parallelepiped. □ 

4.6 Proof of Theorem 11.11 

The proof of Theorem 1 1.1 1 is by induction on d and follows along the lines of Theorem 1.7 in [GTn9j . 
We sketch the proof here. 

Proof of Theorem \1.1[ The base case of d = 1 is trivial. Indeed, if a linear polynomial / : F*^ —>• F 
satisfies |E[e(/(x)]| > |F|“*, then by orthogonality of linear polynomials, we have f{x) is a constant 
and hence has rank 0. Now, suppose the hypothesis is true for degree d — 1. Let A £ N depending 
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on d be specified later. We have |E[e(/(x))]| > |F| By Lemma ISTTl there exists B = {hi,.. .he : 
hi € Vd-i{^^)}, c = c{d, s, t), and L : —>■ F, such that 

Pr[/(a;) / r(/ii(x),... heix))] < |F|"‘. 

Let r : N —)• N be a growth function that depends on d a nd w ill be specified later. Regularize B to 
an r-regular polynomial factor B' = {h'l ,..., d < (c). Thus, we have for an appropriate 

r' : F^^ —)• F that 

Pr[f{x)^T'{h'i{x),...h'Ax))]<\¥\-\ 

In the rest of the proo f, we prove that / is . 8 ^-measurable. This will finish the proof. We will 
assume that r(j) > {d,2t + j) for all j € N. By Markov’s inequality and Lemma 14.91 for at 

least 1 — fraction of atoms A, 

Pr, 6 A[/(x) / r'ih'iix),... h'Ax))] < 1 F|-*/^ 

The first step is to prove that on such atoms, / is constant. Fix such an atom A and let A! ^ A 
be the set where /(x) = T'{h{{x),... h{,{x)). 

Lemma 4.15. Let t he large enough depending on d. Let x € A he arbitrary. Then there is an 
h G (F"')'^+i such that x + uj ■ h ^ A' for all u G {0, 1 }'^+^ \ 0'^+^. 

The proof is exactly as in Lemma 5.2 in |GT09| . We omit it here. Continuing, since / G Prf(F”), 
we have 

^ (-l)H/(x + a;-/i)= 0 . 

Now, by the above lemma, we have f {x + uj ■ h) = ca ior uj 0, where ca is a constant that depends 
on A. Thus, f{x) = ca- 

This finishes the first step. Thus, we have for 1 — |F|“*/^ fraction of the atoms A, call them 
good atoms, f{x) = ca- The final step shows that for any arbitrary atom A, there are good atoms 
A^, 0 / ca G {0, such that the vector t = B(AA G satisfies the parallelepiped 

constraints. It is enough to find one parallelepiped for which x + ta • /i lie in good atoms for ta 7 ^ 0. 
Indeed, let x G M be arbitrary. Pick hi,... , h^+i randomly. The probability that for a fixed ta 7 ^ 0, 
X + ca • h lies in a good atom is at least 1 — |F|“*/'^ > 1 — 2~^'^ for t large enough. The result now 
follows by a union bound over ca G {0, □ 

4.7 Some more consequences 
Degree preserving lemma. 

Lemma 4.16 (Degree Preserving Lemma). Let c,d,D G N with d < |F|. Let B = {hi,... ,hc} 
he a polynomial factor of degree at most d, and rank at least {c, d, D). For T : F'^ —)• F, let 

F : F” —F 6 e defined hy F{x) = T{hi{x),... ,hc{x)). Let deg(F) = D. Then, for every set of 
polynomials h'^,... : F" —)■ F with deg(/i') < deg(hi) for all i ^ [c], if G : ¥'^ ^ ¥ is defined hy 

G{x) = r{h'i{x),... , h'^{x)), we have deg(G) < D. 

We omit the proof here as it can be readily adapted from Theorem 4.1 in |BFH'*~13 . 
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Faithful composition. 


Lemma 4.17 (Faithful composition lemma). Let c, d, 11 S N. Let B = {hi ,..., hc{ he a polynomial 
factor of degree at most d, and rank at least r^^^^ (c, d, D). Let T : —)■ F be defined by r( 2 :) = 
YlseS rii some 5 C N'^ and where 0^/0 for all s G S'. Define F : F” —^ F by 

C 

sGS i=l 

Assume that deg(F) = D. Then for every s £ S, 

C 

■ deg(hi) < D. 

i=l 

Proof. Let di = deg(hj). Define new variables x' = {x[ j : i G [c],j G [d*]} with x[ ^ G F. Define 
new polynomials h[{x') = O^Li x[ j, where we note that h[,... ,h{ are defined over disjoint sets of 
variabl es, an d that deg(/i') = deg(hj). Define G{x') = T{h'i{x'),... ,h'^{x')). Since B has rank at 
least r^^^{c,d,D), we have by Lemma l4.161 that deg(G) < D. Expanding the dehnition of F we 
have 

sG 5 i=lj=l 

Note that each s £ S corresponds to a unique monomial of degree ^l^i disi, and the monomials 
cannot cancel each other. The lemma follows. □ 

Hyperplane Restriction. Next, we show that the notion of rank is robust to hyperplane re¬ 
strictions. More precisely, we have the following. 

Lemma 4.18. Let f £ Vd{^^) such that rank(P) > r. Let H he a hyperplane in F”'. Then the 
restriction of f to H has rank at least r — d — 1. 

We note that the existing results prove a lower bound of r — |F|, but with a slight modification 
(which we show below) we are able to prove a lower bound of r — d — 1. 

Proof. Without loss of generality, let H be defined by xi = 0. For x G F"" let x' = X 2 • • • G F"""^ 
so that X = (xi,x') and /|_h'(x') = /(0,x'). Define fi : F*^”^ —^ F by 

fi{x') = f{i,x') - /(0,x'). 

Clearly, /(x) = r(xi,/|/i-(x),/i(x'),...,/|]p|_i(x')) for some explicit F : —)■ F. For Uj = 

(f, 0,... , 0) G F*^, we have that fi is the restriction of D^^f to IL, and hence deg(/j) < deg{Dy^f) < 
d — 1. To conclude the proof, we show that for any j > d, fj{x') can be expressed a linear combi¬ 
nation of {/i(x'),..., fd{x')}. This will imply that in fact, /(x) = F'(xi, fin, fi{x'),..., fd{x')) for 
some F' : —)■ F and, since deg(/i) < deg(/) for all i, will show that rank(/) < rank(/|j|/)-|-d-|-l. 
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To conclude the proof, fix j > d. We will show that fj{x') is a linear combination of 
{fi{x '),..., fj-i{x')}, which by induction will show the claim. As deg(/) < d we have 

. ..D^^ f{x) = 0. 

j times 

Writing this explicitly, and restricting to x = (0, x'), we obtain that 

i=0 

which in turn implies that 

Thus, fj{x') is a linear combination of {/i(x'),..., /j_i(x')}, as claimed. □ 

4.8 Algorithmic Aspects 

It is easy to see that the existential proof of the main theorem can be made algorithmic. 

Lemma 4.19. Let d,s G N. There is a randomized algorithm that on input f G V d{¥'^ ) with 
|E[e(/(x))]| > runs in time 0{\¥\^ ■ n^) and outputs gi,... ,gc G Vd-i{¥'^), c = s), 

and r : F, such that f{x) = r( 5 (i(x),... gdx)). 

The proof of the above follows similar to Theorem 1.4 in [BHT15] . It can be derandomized 
using either Viola’s generator [Vio09| or Bogdanov’s generator |Bog05| for low degree polynomials. 
To use Bogdanov’s generator, one requires the field size to be at least superlogarithmic in n. For 
details, see the proof of Theorem 1.2 in |Bhal4] . 

4.9 Extension to non-prime fields 

In this section, we extend Theorem 11.11 to non-prime fields in the large characteristic case. When 
the field size is hxed, this was shown in [BB15| . We focus on the setting when the field size can 
grow with n. Let K := Fpm with m G N and p prime, where we assume that p > d. Let x ■ 11^ C 
be a nontrivial additive character, that is x(a + b) = x{<dx{b) for all a, 6 G K, and x ^ 1- 

Theorem 4.20. Let d < p, s G N. Let f G VdiW ^). Suppose that |F 3 ;gK"[x(/(®)]| > 

Then, there exist gi,... gc G c = c^^^{d,s), and T : K'’ —>• K, such that /(x) = 

T{gi{x),...gc{x)). 

We prove Theorem 14.201 in this subsection. The proof follows closely the proof for the prime 
field case, and we highlight the differences. First, we note that any additive character x : IK C 
can be factored as xd) = e(aTr(x)) where Tr : IK —>■ Fp is the trace map and e : Fp —)> C is given 
as usual by e(x) = exp(27rzx/p). A nontrivial character corresponds to a / 0. We may assume 
without loss of generality that a = 1 by replacing / with af, since aTr(/) = Tr(a/) and since if 
af has low rank then so does /. So, from now on we assume that xi^) = e(Tr (x)). 
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We first show that Tr(/) ; 
degree polynomials. 


Fp can be well approximated by the traces of a few lower 


Lemma 4.21. Under the conditions of Theorem \4-20 , there exist gi,...gc S Vd-ii^"'), c = 
c{d, s, t) = ^d.+t+2s+3'^ ^ p . pc such that 

Pr,eKMTr(/(x)) / r(Tr(5i(x)),..., Tr(g,(x)))] < |K|-^ 


Proof. The proof is identical to the proof of Lemma [3.11 applied to the function f = Tr(/) : K” —)■ 
Fp. The reader can verify that the proof of Lemma l3.ll does not really require that K is a prime 
field. Instead, in only relies on three properties of /', which are true in the prime field case, but 
are also true in the current case. These are: (i) f'{x) has bias at least (ii) f'{x) takes few 

possible values {p in our case); and (iii) f'{x) is annihilated by d + 1 derivatives. Conditions (i) 
and (ii) follow by our assumptions. Condition (iii) is true since 

~ ^yi,--;yd+i^if) ~ '^i^yi,---,yd+if) ~ '^( 0 ) = 0 - 

The functions g[,... ,g'^ obtained in Lemma [3T] are derivatives of /', that is g' = for some 

hi € K”. However since f = Tr(/) we have that g[ = DhfTv{f) = Tv{Dh^f), hence we can take 

g^ = DhJ □ 


We next show that this implies that Tr(/) has low rank. Moreover, the factors are all traces of 
low degree polynomials over IK"'. 

Lemm a 4.22. Under the conditions of Theorem \4-20[ there exist gi,...gc € Prf_i(]K"), c = 
s), and T : Fp —>■ Fp, such that Tr{f){x) = r(Tr(g(i(x)),..., Tr(grc(ic))). 

Proof. Identify IK = Under this identification, we can view Tr(/) as a polynomial in Prf(F™'"). 
By Lemma I4.21[ it can be well approximated by a function of Tr( 5 i),..., Tr( 5 rc) G P(i_i(F’""). 
Hence, by Theorem ll.il Tr(/) has low rank. Moreover, all the polynomials obtained in the proof of 
Theorem o are derivatives of Tr(/), Tr( 5 ri),..., Tr((5rc). But as we already observed, derivatives 
and traces commute, hence all the polynomials in the factorization obtained in Theorem 11.11 are 
traces of derivatives of /, as claimed. □ 


To conclude, we show that since Tr(/) can be factored as a function of a few traces of low 
degree polynomials, then / must have a low rank. To this end, dehne A/ G Prf(IK"'^) to be the 
derivative polynomial of /, that is 

A/(yi,...,yd) = Dy^^,„^yJ{x) = Dy^^,„^yj{0). 

Here yi,...,yd& IK”. We set y = {yi, ...,yd)& IK”"^- 

Lemm a 4.23. Under the conditions of Theorem \4T2U[ there exist gi,...gc G Prf_i(IK"'^), c = 
c^^{d,s), and T : IK'" IK, such that Af{y) = r{gi{y)),... ,gciy))- 

Proof. We use two basic facts about Af{y). First, it is a multilinear polynomial in each of yi,..., yd. 
That is, for any oi,..., G IK, 

Afiaiyi,..., OdVd) = ai • • • adAf{yi, ...,yd). 
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Second, it is biased. By the Gowers-Cauchy-Schwarz inequality (see eg |GT09] i. and the fact that 
derivatives and traces commute, we have that 

|E,,K-[e(Tr(A/(y)))]| = ||e(Tr(/))fj', > ||e(Tr(/))||^‘*, = |E.eKMe(Tr(/(x)))]p‘* > 

Thus, we can apply Lemma 14.221 to A/ (with s' = s2'^) and obta in that there exist polynomials 

91 -, ■ ■ ■, 9c ^ and a function T : —)• Fp, where c = s'), such that 

Tr(A/(y)) = r'(Tr(gi(y)),..., Tr( 5 c(y))). 

Each of Qi is a derivative of A/. Since A/ is multilinear in yi,...,yd, each gi can be decomposed 
as the sum of d terms, each is a multilinear polynomial in d — 1 of the d sets of variables yi,..., 
With the price of increasing c to at most dc, we assume for simplicity that each is multilinear in 
{Uj ■ j S [d] \ for some ii G [d]. 

Fix a G K. Define y“ = {ayi,y 2 , ■ ■ ■ ,yd) £ We have that A/(y“) = aAf{y) since / is 

multilinear. We also have gi{y°') = aigi{y) where Uj = 1 if £* = 1 and Ui = a otherwise. Thus 

Tr(aA/(y)) = r'(Tr(aiyi(y )),... ,Tr{acgc{y)))- 

To conclude, note that any z G K is uniquely determined by (Tr(az) : a G K). Thus, if we know 
the value of gi{y),... ,gciy), we can compute Tr(ayj(y)) for all a G IK,i G [c], from that compute 
Tr(aA/(y)) for all a G IK, and hence compute A/(y). We thus obtain that 

A/(y) = r(yi(y),.. .,gc{y)) 

where T : IK'^ —?> IK is as described above. □ 

To conclude, we relate the rank of / to the rank of A/. This is the only place in the proof where 
we use the assumption that p > d. Assume that Af{y) = T{gi{y),... ,gc{y)) where gi,... ,gc G 
Prf(K"''^). Let fd denote the homogeneous part of degree d of /, and let f^d = f — fd- We have that 

A/(x, ...,x) = dl- fd{x). 

li d < p then d! is invertible in IK, and hence 

f{x) = ^Af{x,...,x) + f<d{x) = ^r{gi{x,... ,x),... ,gcix,... ,x)) + f<d{x). 

Thus, / has rank at most c + 1. This concludes the proof of Theorem 14.201 


5 Applications: Effective algebraic geometric bounds over large 
finite fields 

5.1 Hilbert nullstellensatz 

We prove the following effective version of the Hilbert Nullstellensatz for finite helds. 
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Theorem II.2L Let c,d G N. Let Pi,... Pc-, Q G Assume that Q{x) = 0 whenever 

Pi{x) = ... = Pc{x) = 0. Then there exist r = Od^d^), Ri,... Rc € D = Od,c{R), such 

that 

C 

Q{xY = 'Y^Ri{x)Pi{x). 

i=l 

The novelty here is that r and D do not depend on n or |F|. 

Proof. Let B = {Pi,... Pc, Q} be the corresponding polynomial factor. We r egularize B to obtain 
B' = {<SP ... Sc'} with a growth function r : N —)• N satisfying r{j) > c^^{d,j + 1). Note that 
R < cj^^{c+ 1). We also have rank(P') > r(c') > c^^{d,c! + 1). Also, by Lemma 031 for every 
b G F^', 

PrdB'ix) = 6] = ^ ± > 0. (3) 

Since B' Psem B, there exist L : F^ —)• F and for i G [c], Lj : F^ —)• F snch that 

Pi{x) = ri(5i(x),... 5c'(x)) 


and 

Q(a:) = r(5i(x),...5,.(a:)). 

We next have the following claim. 

Claim 5.1. For any z G F^\ IfVi{z) = 0 for all i G [c], then r(z) = 0. 

Proof. Snppose Ti{z) = 0 for all i G [c]. Then, by Equation ([3]), there exists a; G F*^ such that 
B'{x) = z. Thus, for all i G [c], 

Pi{x) = ri(S'i(x),... S'c'(x)) = Ti{z) = 0. 

This implies by the hypothesis that 

r(z) = Q{x) = r(S'i(a;),... Sc'{x)) = 0. 


□ 

By Lemma [4.171 (and by ensuring r{j) > we have that deg(rj) < d for i G [c] and 

deg(r) < d. By applying the strong nullstellensatz to L and Lj, we obtain A* : F"^ ^ F, i G [c] such 
that for some r G N, 

C 

r(2)’' = ^A,(2)r'(0), 

i=l 

and r, deg(Aj) < Od^dY- We define P* : F" —)• F for i G [c], by Ri{x) = Ai{Si{x),... Sc'{x)). Again, 
it is easy to see that deg(Pj) = Od^dY- Now, substitnting z = (Si(x),... Sc'{x)) we get 

C 

r(Pi(x),.. . Pe'(x))'- = J2MSdx), ■ ■ ■ Sc'{x))TdSdx),.. . Sc'{x)) 

i=l 
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which implies 


Qi^T = Ri{x)Pi{x). 

i=l 

This concludes the proof. □ 

As a corollary we have the effective weak nullstellensatz. 

Corollary 11.31 Let c, d € N. Let Pi,... Pc S be such that they have no common zero. 

Then there exist Ri,... Rc G D = Od,c{R), such that 

C 

Ri{x)Pi{x) = 1 . 

i=l 


Proof. Set Q{x) = 1 in Theorem 11.21 □ 

5.1.1 Computational complexity of the nullstellensatz 

We have the following algorithmic version of Theorem 11.21 

Corollary 5.2 (Algorithmic strong nullstellensatz). Let c, d £ N. Let Pi,... Pc G Let 

Q G Pd(F”) sueh that Q{x) = 0 whenever for all i, Pi{x) = 0. Then we have an algorithm that 
performs field operations that outputs Ri,... Rc & Vd{A'^), D = Od,c{^), such that for r as 

in Theorem \1.2l 

C 

Qixf = Y,R^{x)P^{x). 

i=l 

Proof. Theorem 11.21 guarantees that Ri G Vd{F'^)- Thus, the terms on the right side have degree 
D + d. Therefore, for each r G N, we can solve a system of linear equations in unknowns 

by comparing the coefficients on either side and we are guaranteed a solution. Thus, the running 
time is (n • log □ 

As before, we state the algorithmic version for weak nullstellensatz. 

Corollary 5.3. Let c, d G N. Let Pi,... Pc € Prf(F"') be such that they have no common zero. Then 
we have an algorithm that runs performs field operations that outputs Ri,... Rc G 

D = Od,c(l); such that 

C 

'Y^Ri{x)Pi{x) = 1 . 
i=l 


Proof. Set Q{x) = 1 in Corollary 15.21 


□ 
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5.2 Radical Membership Problem 

In this subsection, we solve the radical membership problem in the following setting. Recall that 
for an ideal /, \/7 is defined as 

VI = {/ : Z™ G /, for some m > 1}. 


Theorem ll.4[ Algorithmic Radical Membership] Let c, d G N. Let f3 G (0,1). Let Pi,, Pc, Q G 
Pd(F”). Let I = (Pi,... ,Pc). Then we have an algorithm that performs field operations 

and decides if Q G Vl. 

Proof. We first observe that Q G Vl if and only if 


1 G (Pi,..., Pc, 1-2/(5) CF[xi,...,Xn,2/]- 


Once we have this, we use Corollary 15.31 To see this well known equivalence, we first show the 
forward direction. 

Suppose Q G Vl. Let J = (Pi,... ,Pc, 1 — yQ). Then, for some m > 1, (5™' G J and thus 
yrriQm g j \ _ yQ g J gggi heucB 1 — G J. Thus, 1 G J. 

To see the other direction, suppose 1 G J. Then by the weak nullstellensatz. 


1 = . . .,Xn,y)Pi{x) + S{xi, ...,Xn,y){l- yQ{x)). 

i 


Setting y = 


Q(x) 


we have 


1 = '^Ri{xi, 


,Xr. 


Q{x 


-)P^{x). 


Let m be the largest degree in y among all the Rfs. Multiplying by gives G I which finishes 
the proof. □ 


5.3 Counting rational points on low degree varieties 

We now consider the problem of detecting a rational point in a variety and if so, provide a random¬ 
ized algorithm that outputs an approximation to the number of rational points in the variety. Along 
the way, we also show holes in the number of rational points in a variety. The exact problem of de¬ 
tection of rational points is NP hard. See for example |AH96llHI93llKY0^IHW9^IGKS96[IGGL0^ . 

Given polynomials fi, ... fc : F*^ —)• F, let Vp{fi, ..., fc) P F" denote the set of common zeroes 
of fi’s, where the subscript p is to emphasize the interest in rational points. 

Theorem 11.51 [Rational points in varieties] Let c,d,t,u G N. Let Pi,... ,Pc : F” —^ F be poly¬ 
nomials of degree d. There is a randomized algorithm that performs Od^c,t,u{'n^) + field 

operations and performs the following with probability 1 — -p^. 

1. Decide if Vp{Pi ,..., Pc) is empty. 

2. Output an integer N such that iV = (1 ± |F|““)|l^(Pi,... ,Pc)|. 
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Proof. Let B = {Pi,... Pc}. Applying Lemma HTGl we regularize B to obtain B' = iPi, ... 5c'} with 
a growth function r : N —)• N satisfying r{j) > + u). Note that d < C~^{c + u). We 

also have rank(P') > r(d) > cUJJ' {d, d + u). Also, by Lemma 14.91 for every b E 

Pr^lB (x) — 5] — |p|^, ± |p|c'+u- 

Since B' dsem B, there exist Lj : —)• F for z E [c] such that 

Pi{x) = rj(5i(x),... 5c'(x)). 

Let 5 = 4p(ri,..., Lc') be the set of common zeroes of the Lj’s. We have the following claim. 
Claim 5.4. 4},(ri,... jLc/) = d ^ Vp{Pi, ...,Pc) = 4>- 

Proof. (=i> direction) Suppose l^(Pi,..., Pc) 7 ^ (p- Let x E l^(Pi,..., Pc). Then, z = 
(5i(x),...,5c.(x)) Eyp(ri,...,rcO. 

(-4= direction) Suppose 4^(ri,..., Lc') 7 ^ p. Let z E l^(ri,..., Lc'). Then, by Equation (jl]), 
since Pr[P' (x) = z] > 0, there is an x E F” such that z = (5i(x),..., 5c/(x)). Fix an arbitrary 
i E [c]. Then 

P(x) = ri(5i(x),... ,5c'(x)) = ri( 2 :) = 0. 

□ 

Now, we search over the fixed dimension space in time |F|^ and this proves the first part of the 
lemma. We have the following claim which proves the second part of the lemma. 

Claim 5.5. |Ep(Pi,...,Pc)| = (1 ± |F|-“)|Fr-'='|Ep(ri,... ,rcO|. 

Proof. For every z E 4},(ri,..., Tc'), by Equation Q, the number of points x in F*^ such that 
B{x) = z is (1 ± |F|““)|F|"'“'^ . Summing over every such z proves the claim. □ 

□ 

Holes in the number of rational points The above lemma states that the number of rational 
points do not span all possible values. They only lie in the following union of intervals 

iFr' 

Ij [z-|Fr-"'(i-|Fr“),i-|Fr-"'(i+Fr“) . 

i=l 

As a special case, we have a strengthening of the Chevellay-Warning theorem in the setting of hxed 
c, d. The Chevellay-Warning theorem states that if a collection Pi,..., Pc E Prf(F"') with dc < n) 
has one common solution, it has at least |F| many solutions. 

Corollary 5.6. Let Pi,..., Pc : F*^ —)■ F be polynomials of degree d. Then, if the collection has at 
least one solution, then it has at least many solutions. 
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Such a result for constant size prime fields was proved by the second author in |LovlO| . It is 
noteworthy to compare the above bound with the Az-Katz theorem [Ax64[ IKatTl] , which says that 
the number of solutions is at least More formally, 

Theorem 5.7 (Ax-Katz theorem). Let Pi,..., Pc : —)• F he polynomials of degree d. Then, if 

the collection has at least one solution, then it has at least |F|”/'^“'^ solutions. 

6 Application: List decoding Reed-Muller codes over large fields 

6.1 Notation and Preliminaries 

Let F be a prime finite held. A code C C {F” —>• F} is a subset of functions from F"" to F, where 
functions in the code are called codewords. The distance between two functions /, ^ : F"" ^ F is 
the fraction of coordinates where they disagree, 

dist(/,g) := ^ \{x e F^ : /(x) / 5 (x)}| . 

The minimum distance of a code C is 


distmm(C) := min {dist(/,g)}. 

A code C is linear if it is a linear subspace over F. For a linear code, distmm(d) = 
mino^/gc{dist(/, 0)}. For a code C and a function ; F*^ —)• F, the set of codewords at distance at 
most p from g is denoted by 


Bc{9, p) := {/ e C : dist(/, g) < p]. 


The list decoding size of C at radins p is the maximal nnmber of codewords at distance p from any 
possible function. 


Ldp) := m&^^\Bc{g,p)\. 


The Reed-Muller code RM]F(re, d) is the evaluations of all polynomials / : F*^ —)• F of degree at 
most d. So using our previous notation, RMF(n,(i) = Prf(F’^). As we assume d < |F|, its minimal 
distance is given by 


distmin(RMF(n,(i)) = min{Pr3;gF-[/(3:) / 0] : / : F"- F, / / 0,deg(/) < d} 


1 - 


A 

M' 


The main theorem we prove is that Reed-Muller codes, for constant degrees, are list decodable up 
to their minimal distance. We also extend this to estimate the number of codewords in balls of 
larger radii. 

Theorem 11.61 Let d, s G N. There exists c = c(d, s) such that the following holds. For any prime 
hnite held F with |F| > d and any n G N, 

“ j|| “ 1®^) “ ’ 
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Moreover, for any 1 < e < d, 


W,.) 

Both bounds are tight, up to the exact value of c = c((i, s). The proof will follow from a series of 
propositions which we state next. 

Let RM]p(n,(i, A;) be a subcode of RMF(n, d), which consists of polynomials of degree < d and 
rank < k. We first reduce the problem of list decoding Reed-Muller codes to list decoding a low 
rank subcode. 

Lemma 6.1. Let e < d, s G N. There is k = k{d,s) such that for any prime field F with |F| > d 
and any n G N, 


^RMF(n,d) • LRMF(n,d,fc) 

So, from now on we restrict our attention to JiM.f{n,d,k). Recall that A(F) is the probability 
simplex over F, that we naturally embed F C A(F). For 5 : F*^ —)■ F let p{g) : F” —)• A(F) be 
this embedding extended to functions. With this notation, for f,g:¥^^¥we have dist(/, 5 ) = 
1 — {p{f),p{g))- So, from now on we extend our study to functions : F” —)• A(F), which can be 
viewed as randomized functions. The dehnition of the codewords in C which are close to a function 
can be extended to randomized functions following the above discussion: 

d) = {/ € C : {p{f), (p)>l- p}. 

Let T" = {hi, . .., he : F*^ —^ F}. We say that ip is T'-measureable ii p = r(J-') for some function 
T : FI-^I —)■ A(F). Recall that E[(^|T'] : F*^ —)■ A(F) as the average of p with respect to F, 

E[(/p|.F] (x) = E [p{y) : 2 / G F", F{x) = F{y)] . 

Clearly, E[</ 5 |T'] is J-'-measurable. Moreover, for any : F” —)• A(F) which is T'-measurable, we have 

{^,p) = {i,E[p\F]). 

We next show that the list decoding problem for low rank codes can be further reduced to the case 
where the center g( is a measurable with respect to a small polynomial factor of bounded degree. 
More accurately, it can be list decoded to this latter problem. 

Lemma 6.2. Fix d,k,s G N. There exist c = c{d, k,s) G N such that the following holds. Let F be 
a prime field with |F| > d and let n G N. For any p ■.¥^ ^ A(F) there exists a family of jFl'^ sets 
of polynomials Fi C RMF(n, d — 1), 1 < i < |F|'^, of size \Fi\ < c each, such that 

V/ G RMF(n,d,A:) 31 < i < \¥f,\{p{f),p) - {p{f),¥[p\Fi])\ < |F|-T 

As a corollary, we bound the list decoding size in RMF(n, d, h) by the list decoding size when 
the centers are measurable functions for a system of a few polynomials. 


i-^-T 

|F| |F|‘ 
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Corollary 6.3. Let C = RMF(n, d, k). Then for any 0 < p < 1, 

bc{t,p)^ U BcmT,],p+\Fr). 


Finally, we prove bounds for the list decoding problem for low rank codes, where the center is 
measurable with respect to a polynomial factor. In fact, we can even ignore the restriction that 
the code is low rank, as the restriction on the center is sufficient to obtain the bounds. 

Lemma 6.4. Fix d,s,c G N. There exists c' = F{d,s,c) such that the following holds. Let F 
be a prime field with |F| > d and let n G N. Let T C KMp{n,d — 1) of size |J^1 < c, and let 
<y9 : F” —^ A(F) be J--measurable. Then 


BRMr{n,d) ^¥^5 1 “ 


e 1 
~ |Fp 


In particular, for any k GN, 


e 1 

-®RMF(n,d,fc) ~ ~ |p|s 


< |F|^'-”‘' 




With the above in place, we are ready to prove our main theorem of the section. 

Proof of Theorem \l.b\ Let p := 1 — — -p^. By Lemma lUTTl there is k := k{d, s) such that 

\2s - 


BKMf{n,d){p) < |F| ^ • LRMF(n,d,fc) { P + 


|F| 


2s 


Let 5 : F" —F, (^ = p{g). Let C = RMF(n, d, k). Then, by Corollary 16.31 for some c = c{d, s, k) we 
have 

IFI^: . ^ 


\Bc{‘p,p)\ < ^ 


2 = 1 


Be E[(^| J"*], 1 - 


|F| |F| 


2s 


where each Ti C RM]F(n, d — 1) of size \ J-i\ < c. Finally, by Lemma 16.41 for some d = c'{d, s, c), we 
have that for every 1 < i < |F|'^, 


We conclude that 





< |F|^ 


-^RMF(n,d) 




|jp|2s+c+c'n‘* = 


□ 


We prove Lemma l6.ll Lemma 16.21 and Lemma 16.41 in the following subsections. 
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6.2 Proof of Lemma 16.11 


We state the Johnson bound first, which provides bounds on the list decoding size for any code, 
based just on the minimal distance of the code |Joh62| . 

Lemma 6.5 (Johnson bound). Let C C —>• F}. Suppose that distmm(C) > 1 — — £• Then, 

- W\ ~ 

Proof of Lemma [^171 Set k = k{d, s) = 2s). Fix arbitrary 5 : F" —)• F. Let 

L = |/ e RMF(n,d) : dist(/,fi() < 1 - - |^| . 

Let m = \L\ and L = {/i,..., /m}- Construct a graph G = (L, E) where (/*, fj) £ E rank(/j — 
fj) < k. Let I C L be a maximal independent set. 

Claim 6 . 6 . distmm(f) > 1 - 

Proof. Let f = fi — fj ^ 0 for fi,fj G I. Since rank(/) > k{d,s) = {d,2s), and therefore, 

rank(a ■ f) > k for all o G F, a 7 ^ 0, we have by Theorem II. II that E [e (a • f{x))] < |F|“^®. Thus, 

l-dist(/i,/j) =Pr^ 6 F"[/(x) = 0] = ^ + 


□ 


By the above claim, using the Johnson bound on /, we have that 


(5) 


Next, consider any / G /. Say hi,..., ho G RMF(n,(i, A:) are such that {f + hi, f) G E. As 
dist( 5 , / + /ii) < 1 - ifi - we have that dist (5 - /, /ij) < 1 - if, - Thus, 


D < LjiMi/{n,d,k) 


1 - 


1 


|F| |F|‘ 

Combining Equation ([S]) and Equation Q we conclude that 


( 6 ) 


TRMi^{n,d} |jp| |F|^) “ ■-^RMF(n,d,fc) |jp| |F|*) ' 


□ 
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6.3 Proof of Lemma 16.21 


The proof of Lemma [6 .2 1 reauires several refinements of RM]p'(re, d, k). First, for F C RMF(n, d — 1) 
a family of polynomials of degree < d — 1 , define RMf{n,d,k,F) to be the family of degree d 
polynomials, which can be decomposed as a function of the polynomials in F, and k additional 
polynomials of degree < d — 1. 

For k = {ki,... ,kd-i) G let |k| = The code RMF(re,d,k,T") is a subcode of 

RMp (n, d, I k|, T”), defined as family of degree d polynomials, which can be decomposed as a function 
of the polynomials in F, and |k| additional polynomials, with ki polynomials of degree i, for 
1 < f < d — 1. The following statement of the theorem allows for a streamlined inductive proof. 

Theorem 6.7. Fix d,s G N,k G C RMF(n,d— 1) and let C = RMF(n,d,k, J^). There 

exist c = c(d, k, s, IT'D G N such that the following holds. For any (/? : F” —)• A(F) there exists a 
family of \¥\'^ sets of polynomials Fi C RMF(n, d— 1), 1 < i < |FD, of size \Fi\ < c each, such that 

V/ G C 31 < i < |F|M(p(/),<^) - {pif),E[^\F^])\ < |F|-T 

The simplex. Recall that for / : F’'^ —)• F we have p{f) : F’'^ —)• A(F). Define q{f) := p{f) — so 
that q{f){x)y = 0 for all x G F”. For a G F", 6 G F, dehne ia,h : F"" —)• F by ia,b{x) = (a, x) + h. 

We prove the following analogue of Fourier expansion over the simplex. We will refer to it as the 
Fourier simplex decomposition. 

Lemma 6 . 8 . Let 5 : F" —)• F. Then, 

<l{9){x) = ^ Oia,bq{L,h){x), 

where 

oia,h = {q{g),q{ia,b)) - {q{g),q{L,o)) 
are unique and satisfy aa,b £ [“1)1]- denote the aa,b by q{g){a,b). 

Proof. We first construct a basis for the subspace V C defined as follows. We index the 

coordinates of u G Vx,y, with x G F",?/ G F. Then 

R = I Vx,y G : J]; Vx,y = 0 Vx G F 

[ j/GF 

Note that q{g) G V for any : F"' —>• F. Also, dim(R) = iFj^dFl — 1). We next establish that the 
set of vectors 

I = {q{ia,b) ■■ a g¥^, 0 ^ b g¥} TV 

is a basis for V. First, note that |/| = iFj^dFl — 1). To prove linear independence of I, suppose 
that 

A := ^ aa,bq{L,b) = 0. (7) 

aGF'>, 07 ^feGF 
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Let Va = span{q{ia,b) : 0 / 6 G F}. Then, by Equation d?]), ~ where Va = 

Yloj^bew '^a.,bqiL,b) e Va- We now note that {va,Va') = 0 if a / a'. Indeed, 

(^a)^a') ( ^ ^ ^a,bq{.^a,b) 1 ^ ^ ^a',b'q{.^a',b'^ j 0 , 

\b ^0 b'^0 / 

since for any o 7 ^ a' G F*^ and any h,b' G F, 

{Q{L,b), q{L',b')) = Pr^eF" [(a, x) + b = (o', x) + 6 '] - |^ = 0. 

In particular, {va,Va) = 0 for all o G F"" which implies that Va = 0. Fix an arbitrary a G F"". We 

now show that Va = Ylb^^^o Cia,bq{(-a,b) = 0 implies that Ua^b = 0 for all 6/0. Indeed, fix x G F*^ 

such that (a,x) = 0. Then Va{x)y = aa,y - if ^ / 0; and Va{x)o = - J2b^o As we 

have that Va{x)y = 0 for all ?/ G F, it must be that Oafi = 0 for all 0 / 6 G F. 

Thus, I indeed forms a basis for V. The uniqueness of the Oa^b follows from the linear indepen¬ 
dence of I. So far, we have established that 

qi9)ix) = OLa,bq{L,b){x). ( 8 ) 

aeF", 07 ^beF 

Using the simple fact that 

{q{^a,b), q{L',b')) = Pr[(o, x) + b= (o', x) -h b'] - 1 ^, 
we record the following observation. 

0 if a / o' 

{q{L,b),q{L',b')) = \ ifo = «',& = ft' 

f if O = a ',6 / b' 

Taking inner product on both sides of Equation ([S|) with q{ia,b) we get. 


{qi9),qiL,b)) = (f - ^ aa,fe'j 


“ IJPI Cta,b'- 

' ' 6 Y 0 


Summing for all 6 / 0, we obtain that 


'^{q{9),qiL,b)) = T|T 
b^o ' ' feVo 


Thus, 


oia,b = {q{9),q{L,b)) + '^{q{9),q{L,b'))- 

b'^O 

Next, we observe that X^fteF qi^a,b) = 0. This is since 


Yj 9i^a,b)x,y = Y ( = 1-1 = 0 

&GF &GF ^ ' 


(9) 


( 10 ) 
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So we have 


aa,b = {q{g),q{L,b)) - (9(5), 9 ( 4 ,o))- 

Since {q{g) , q{ia,b)) £ ^ “ 'p] 4^^ 6 G F, we obtain that aa,b £ [— 1 ; !]• This finishes the 

proof □ 


Weak regularity on the simplex. We prove the following lemma. In the following, X, Y are 
arbitrary finite sets, where we will later apply the lemma to X = F",y = F. The proof is similar 
to Frieze-Kannan weak regularity [FK99] but generalized to the simplex. 

Lemma 6.9. Let e > 0 be arbitrary. Let (p X ^ ^(T) he arbitrary. Let J- he a collection of 
functions f : X ^ Y. Then, there exist /i,..., /c G T", c < 1/e^ such that 

1 yf ^ 

T= -^^+Ylaiq{f^) + h, 

where |ai| < 1 and h satisfies that for all f £ J-, 

\{h,qif))\ < e. 

Proof. Let p>' = p — -p^. We will define a sequence of functions (/J* G F” —)• Initialize pQ := 0. 

Given pi, if there exists fi £ F such that \{ip' — Pi,q{fi)) \ = ai > e, set Pi+i := Pi + ai+iq{fi). We 
show that the process terminates quickly. To that end, define 6i := \ \ip' — Pi\\\. Then 

6i+i = Wt'- Pi - aiq{fi)\\2 

= Si + ai\\q{fi)\\l - 2{ip' - ipi,aiq{fi)) 

= S, + aUl-l/\Y\)-2a^ 

< Si- 

< S,-e^. 

Additionally, Sq = 1441 — ^ Si > 0 for all i. Thus, the process terminates after < 1/e^ 
steps. At the end of the process, we have 

C 

i=l 


where h satisfies that for all f £ F, \{h, q{f))\ < e and \ai\ < yJSi — < 1. 


□ 


Proof of Theorem 6.7. The proof is by induction on d, s,k, IJ^I. For k, we use the lexicographic 
order on which is well founded to define a Noetherian induction. Let C = RMF(re, d, k, T"), 

and fix y? : F” —A(F) and s > 1, and set e = |J-'|. 


We first argue that we may assume that F is regular. For a rank function iii : N —)• N to be 
determined later (as a function of d, k, s), regularize F to obtain an i?i-regular factor F'. Note 
that 


RM]F(n, d, k, y) C RM]F(n, d, k, T”'). 
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Thus, we may instead study RMF(re, d, k, So, we simply assume from now on that T is ri- 
regular for some ri = Ri{d, k, s, IT'D to be determined later. 

Let f gC. By definition, we can decompose / as 


f = r{n,R), 

where T-L = {hi ,..., /ifc} is a family of k polynomials of degree < d — 1 and where T : —)• F is 

some function. We argue that we can also assume that "R U T is regular. If "R U T is not r 2 = ri — 1 
regular, then 

rank (E O-ihi + E bifi^ < r2, 

for some ai,bi € F, not all zero. Let d' be the maximal degree of a polynomial appearing in the 
linear combination with a nonzero coefficient. It cannot be that all these polynomials are in {fi}, 
as we assumed that the rank of T is at least ri. So, Ui 0 for some i where deg(/ij) = d'. This 
means hi can be expressed as a function of the other polynomials in ^ U T, and an additional set 
%' of ri — 2 polynomials of degrees < d' — 1. So, if we construct k' from k by reducing the number 
of polynomials of degree d' by one, and increasing the number of polynomials of degrees < d^ — 1 
by r 2 , then in fact we have 

/ G RMF(n,d,k',T). 

Thus, we may apply the theorem by induction in order to handle these polynomials, since k' < k 
in the lexicographic order. So, we assume from now on that T U is r 2 -regular. 

Let Ip = E[(/?|T]. We will include T as one of our sets T, and hence handle any / for which 
I I E |E|“*. So, from now on we consider only / for which I ((/(Z),'i/;) — (g'(/), (/?) I > 

|F|~^. Decomposing T to its Fourier simplex decomposition fLemma 16.Sp . and applying this to 
decompose /, we obtain that 

Qif)ix)= ^ f{a,b,c) ■q(^'^aihi{x) + '^bifi{x) + c^ , 

aGF'',beF®, 07 ^c€F 


where |r(a,6, c)| < 1. Note that whenever a = 0, we have 

(d (X] + c) , bifi + , -0^ 

since X] bifi + c is T-measurable. Hence, there must exist 0 / a G F^, b G F'^, c 7 ^ 0, such that 

As E[y 5 — ^] = 0 we equivalently have 

(p {^aihi{x) + '^bifi{x) + (^ ,^3 - -iA) > 

Next, we decompose by Lemma 16.91 both ip and if, and subtract the decompositions obtain that 


l 

= q{wt) + C, 

t=i 
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where 7 t S [—1,1], wt G C, : F"- —)■ satisfies that | (^,/) | < |F| 2 (s+fc+e+i) / G C, and 

I < |][r|4(s+fc+e+i)_ There must exist t G [1] such that 


p aihi{x) + ^ bifi{x) + cj , q{wt)'j > |F| 


I—5(s+fc+e) 


As wt € C we can decompose it as as a function of k polynomials of degree < d — 1 and Let 
-R 3 : N —)• N be large enough to be determined later (as a function of d,k,s). We regularize 
these polynomials to be i? 3 -regular, and obtain a collection of < ci(d, k, |J^|, s) polynomials. We 
choose i?i large enough so that iii(e) > ci(d, k, e, s). This ensures that does not change in the 
regularization process. Hence we have 


wt = TtiUt U T), 


where T-LtU T is i? 3 -regular, |'Ht| = kt < ci(d, k, e, s), Tit = {htp, ■ ■ ■, ht^kt} and —)■ F is 

some function. Decomposing Ft to its Fourier decomposition, and applying this to decompose wt, 
we obtain that 

q{wt){x) = ^ ft{a,b,c) ■ q{^^aiht,i{x)+ '^bifi{x) + (^ . 

aeF''t,bGF®,C7^0 


So, there must exist a’ G F^% 6 ' G F®, c' 7 ^ 0 such that 


p{^aihi{x) + '^bifi{x)+c^ ,q{^a%^i{x) + '^b'ji{x) + dy^ > |F| 5(6+fc+e+i) (fc^+e+i)^ 


which equivalently means that, for b'l = bi — b\ and c" = c — c', that 


Pr 


xGF" 


1 

M 


>|F| 


aihi{x) - ^ a%^i{x) + ^ b'lfi{x) + c" = 0 
This implies that 

rank aihi{x) - ^ a%^i{x) + ^ b'lfi{x)^ < ^4 = r 4 (d, k, e, s). 


~(5(5+/c+e+l)H-(/ct+eH-l)) 


Let d! be the maximal degree of a polynomial appearing in the linear combination with a nonzero 
coefficient. By choosing large enough, we guarantee that it cannot be the case that all the 
polynomials of degree d' are in Rt U F. So, a* / 0 for some i such that deg(/ij) = d'. So, we 
can express hi as a function of all the other polynomials in U U and an additional set 
of r 4 polynomials of degree < d' — 1 . Thus, we define Ft = F Li T-Lt^ and construct k' from k by 
decreasing the number of polynomials of degree d' by one, and increase the number of polynomials 
of any lower degree by r 4 , then k' < k and we obtain that in fact 


/GRMF(n,d,k',j;). 


Crucially, the sets Ft were obtained depending only on p and F. Thus, we can apply the theorem 
by induction to each of them. Let {Ft^i : 1 < z G |F|^ } be the sets guaranteed by the theorem, 
where c' < c{d, k', s, Ft). We conclude the proof by taking their union, which has size < • 

|]p|c(d,k',s,|j't|)^ which is bounded by iFj'^ for a large enough c = c(d, k, s, |d^|). □ 
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6.4 Proof of Lemma 16.41 


The proof of Lemma 16.41 is similar to the authors’ previous work [BLT5] . Let T = {hi, ..., hc{ 
a family of polynomials of degree <4 — 1, and let y? : IF” —?■ A(F) be J-'-measurable. Let p := 
1 — ||^ — 1 ^. Fix / G C such that 

For a € F'^ define 

Aa := {x G F” : hi{x) = ai, ..., hc{x) = Oc}. 

Define Fj : F^ —>• F by setting F f (a) to be the most common value / attains on Aa ■ Then 
Pr[/(x) = Tf{hi{x),...,hc{x))] = Y] Pr[x G Aa] •maxPr[/(x) = y*\x G Aa] 

V* GF 

a€F^ 

> ^ Pr[x G Aa] • E [(p(/), p)\x G Aa] 

aGF'^ 

= mpif),p)] 

>i-p. 


Let ri,r 2 : N —>• N be two non decreasing functions to be specified later, and let be as 

given in Lemma 14.61 We will require that for all m > 1, 

ri(m) >r 2 (cj^(m + l)) + cj^(m + l) + l. (11) 

Let B be the factor defined by T". As a first step, we ri-regularize J- by Lemma 14.61 This gives 
an ri-regular factor B' of degree at most d, defined by polynomials = {h{,... ,h{, : F” —)• F}, 

such that B' '^sem B, d < and rank(.S') > ri(c'). Let Gf ‘.W —)• F be defined such that 

Gf{h'i{x ),... ,h(,,(x)) = Vf{hi{x),.. .,hcix)). 


Then 

Pr[Gf{h[{x),h2{x),...,h{,{x)) =/(x)] >1-/9. (12) 

Appealing again to Lemma 14.61 we r 2 -regularize Bf := B' U {/}. We get an r 2 -regular factor 
B” dsyn B' defined by the collection T” = {h[,... ,h{,, h",..., h",} C RMF(n, d — 1). Note that it 
is a syntactic refinement of B' as by our choice of ri, 

rank(R') > ri(c') > r 2 (cj® (c' + 1)) + G^(c' + 1) + 1 > r 2 (|R"|) + ]B''] + 1. 

We will choose r 2 such that for all m > 1, 

r 2 (m) = max ^rS^(4, 2s + m), r®^(m, d, d)J . (13) 

Since / is measurable with respect to B", there exists F : —)• F such that 

/(x) = F{h'i{x), ..., h'a,{x), /i"(x),..., /i"/(x)). 
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As will see soon, our goal is to analyze the structure of F. We next show that we can have each 
polynomial in the factor have a disjoint set of inputs. Let r S N be large enough to be determined 
later. Let ni = deg(/i') and n 2 = deg(/i''). Define y € indexed as yi,j,k, with 

i G [c'],j G [r\,k ^ [deg(/i9], and define z G indexed as Zij^k, with i G [d'],j G [r], A: G [deg(/i")]. 
Define new polynomials h'-(y),h"(z) as follows: 

_ r (ieg(F) 

Kiy) = Yl n VzG[c'], 

j=l k=l 

^ r deg(h'/) 

n vfG[c"]. 

j=l k=l 

Note that the polynomials {/i' : i G [c']},{h^ : i G [c"]} are defined over disjoint sets of variables, 
and that deg(/i^) = deg{h[) and deg{h") = deg(/i"). Define new functions / : F"'i+”'2 —)• F and 
g : F""! —)■ F as follows: 

f{y,z) = F{h[{y),...,h'^,{y),h'l{z),...,h''„{z)), 

9{y) =G'/(/i;(y),...,/i'^,(y)). 


Claim 6.10. For a large enough r = r{d, c', c", s) it holds that deg(/) < d and 


PryGF-i,zGF" 2 [/(y, 2 ;) = g{y)] - Pr,i,6Fn[/(x) = Gf{h[{x),h 2 {x),.. .,h'^{x))] 


< 


1 

|fp+r- 


Proof. The bound deg(/) < deg(/) < d follows from Lemma [4.161 since r 2 (|J-'''|) > r^^'^^\\F"\). 
To establish the bound on Pr[/ = for each a G let 


Pi (a) = Pr 3 ;gF™[(/i'^(x), ... ,h'^,{x),h'l{x),... ,h'f,{x)) = a]. 

Applying Lemma 14.91 and since our choice of r 2 satisfies rank(J-'") > rS^(d, s + 2|T'"|), we have 
that Pi is nearly uniform over F'^ , 




1 ± |F|-2^ 

|]F|c'+c" 


Similarly, let 

P 2 (a) = PrygF"i, 2 GF- 2 [(/ii(y), ... ,h'^,{y),h'({z),.. ■,h'f,{z)) = a]. 

For r large enough, as the polynomials are evaluated on disjoint variables, it also holds that 


P2{a) 


1 ± |F|-2^ 

|IP|c'+c" 


For a G F'^ , let a' G F^ be the restriction of a to first c' coordinates, a' = (ai,..., Oc')- Thus 

Prj/6F"l,zGF"2[7(y,2) = 5 ( 1 /)] = P'2((^)^F{a)=Gf{a') 

aG¥<^'+F' 

= ^ Pl{0')iF{a)=Gfia')dz\¥\~'^^ 

a&¥<^'+F' 

= Pr^^¥4fix) = Gf{h[{x),h 2 ix),.. ■ ,h'^{x))] ± |F|“2^ 
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□ 


So, we obtain that 


Prj^ 6 F"i,zGF" 2 [/(y, 2 :) = g{y)] > Pr^eF"[/(a;) = Gf{h’^{x),... ,h’^,{x))] - |F| ^^ > ||;|- + |F| 


In the remaining part of the proof, we show that deg{h'-) < d — e. Since, 

rank(i3") > r2{\B''\) > r^^{\B''\,d,d), 

this implies that deg(-F) < d by Lemma 14.171 This immediately proves that the number of / G 
Bc{ip.,p) is bounded by 


\Bc{p,p)\ < (# of F)(# of hi .. .X") < \X'+-")^\F\0{c”nX = |f|Og.,c(^ 


To conclude, we prove the following. 
Claim 6.11. deg(/i") < d — e for all i G [c"]. 


Proof. To simplify notations, let h = h", n' = r ■ deg(/i''), let w' G F*^^ denote the inputs to h", 
namely {zi^j^k '■ j S [^])^ £ w" G demote all the remaining inputs from 

y, z. Let n" = ni + n 2 — n'. Then we have 

f{w',wl = T'iwlhiw')), g{wl = r"K). 

Let do := deg{h), where our goal is to prove that do < d—e. Note that as deg(/) < d by Claim [6T0l 
we must have deg(r') < d. Thus we can expand 

d' 

V {wl... .w'f,, ,t) = '^qi{wl... 

i=0 

where d' < d and qd' 7 ^ 0. Moreover, by choosing r > d^, we have that deg(/i*) = i ■ deg(/i) for any 
i < d. Thus, we have deg(g'i) < d — i ■ do- We have 


Pr[f{w",h{w')) = g{w")] = Pr 


d' 

(do - r")(w^") + diX'XX = 0 

i=l 


We upper bound this probability as a combination of two terms. Consider any fixing of w". The 
probability that qd'{w") = 0 is bounded by 


Pv[qdlw'') = 0] < 


deg(gd') 

|F| 


d — d' do 


Otherwise, we have qdfw") 7 ^ 0. In such a case, by choosing r large enough (as a function of s) 
we have that |Pr[/i(r(;) = a] — |F|“^| < |F|“^® for all a G F; and hence, if we set a* = qi{w'') for 
1 < i < d' and ao = qo{w'') — T"{w"), then 


Pr, 


io'GF"' 


■ d' 

E 

,i=0 


aih[w'y = 0 


= Pr 


/3gF 


d' 


ai/3* = 0 


Li=0 


±|F|-4^<|| +|F|-4^ 
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where /3 G F is a uniform field element. Combining these bounds, we have that 


Pr[f{w'',h{w'))=g{w'')]< 


d — d'do 



d-d'do\ 

) 




Recalling that 'Pr[f{w'', h{w')) = g{w'')] > |f| + |F| we obtain that 

e ^ d — d'do ^ d' d — d'{do — 1) 

|f[ ^ |f1 M ~ W ’ 

Thus, do ~ 1 < < d — e and hence do < d — e as claimed. 


□ 
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